Endpoint Protection

 View Only

  • 1.  SYMANTEC TAMPER PROTECTION ALERT

    Posted Apr 27, 2010 01:09 PM
    Im at a lost why I am now receiving these alert messages when i am using my computer:

    SYMANTEC TAMPER PROTECTION ALERT
    10.0.1.1000
    Target:  C:\Program Files\Symantec AntiVirus\vpc32.exe
    Event Info:  Open Process
    Action Taken:  Logged
    Actor Process:  C:\Program Files\Windows Defender\MsMpEng.exe (PID 1216)
    Time:  Tuesday, April 27, 2010  1:06:29 PM

    Even after I have downloaded the latest updates and completed a full scan, I am still receiving this alert.
    Is my machine under attack?  Any idea what I need to do?


  • 2.  RE: SYMANTEC TAMPER PROTECTION ALERT

    Posted Apr 27, 2010 01:52 PM

    Refer to this KB - http://service1.symantec.com/support/ent-security.nsf/854fa02b4f5013678825731a007d06af/0ae9a2115072834b8025768500336fb7?OpenDocument


  • 3.  RE: SYMANTEC TAMPER PROTECTION ALERT

    Posted Apr 27, 2010 02:41 PM
    I would highly suggest you upgrade to the latest version of SAV. We are currently on 10.2.4/10.1.9.9000. The build you have is very old and vulnerable to network aware threats.

    10.2.4 is for windows vista,7 and server 2008
    10.1.9 is for windows 2000,xp, and server 2003